First read this announcement about malicious commands. Please do not try to execute any command mentioned there, they are very dangerous.
Is there in Linux systems a smart security layer to protect malicious commands execution, exists or not? If exist, then please mention it in details with references.
If not, then I think creation of a smart protection layer can be started. I think it would not be too hard to implement. Concept and implementation of sudo command and sudoers file is already protecting root account. A similar kind of protection can be created. Where every command should pass through a security check, if it pass, will be allowed to execute, else not. A special root owned file will list all known malicious commands. Security check system will compare every commands (actual) with that file. If any match found, then it will inform the user and enter a log entry about the potential threat, and deny to execute easily without rigorous authentication procedure.
Do you have any other idea or information? You are all welcome for suggestions. Together we can make Linux systems more secure and stable and hard to crack.
Bookmarks